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METHOD AND SYSTEM FOR PROVIDING 
CROSS- PLATFORM REMOTE CONTROL AND MONITORING 
OF FACILITY ACCESS CONTROLLER 

5 Background of the Invention 

Field of the Invention 

The present invention relates to a method and system for 
providing cross-platform remote control and monitoring of a 
facility access controller. The monitoring of the facility 
10 access controller includes detecting the status or monitoring 
of alarms operatively linked to a facility. The method and 
system employ a facility electronic access controller which 
is operatively linked to the world wide web. The method and 
system enable data transfer between facility electronic 
15 access controllers having different operating systems. The 
method and system also permit monitoring and control of the 
facility electronic access controllers by remote sites that 
employ web browsers to access web servers of the facility 
electronic access controllers. 

20 Description of the Backgro und Art 

Facility electronic access controllers that are used for 
controlling and monitoring physical access of buildings, 
rooms, and restricted areas typically employ some form of 
identification means to verify the identity of a person 
25 before such person can pass through the controlled or 
restricted area. The identification means typically includes 
a coded card or other type of data bearing record which 
employs a specific coding to identify the user. Many 
facility electronic access controllers are designed to have 
30 built-in electronic processing intelligence, having the 
ability to store unique identified codes in digital form, and 
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to determine who are allowed or not permitted to gain access 
to a controlled or restricted area. 

Such facility electronic access controllers (FEACs) can 
be connected to one or more central computers where a set of 
5 application specific programs are installed. The FEAC and 
the central computers are linked via communication interfaces 
and communicate/interact through specific and predetermined 
protocols. Typically, a set of programs are installed on 
each central computer and are designed for a specific 
10 operating system platform to monitor transactions uploaded 
from a FEAC and also permit downloads of data to a FEAC. 
Typically, a central computer will control several FEAC of 
one building. 

FEACs are typically used for monitoring of intrusion 
15 alarms within a building, or part of a building, rooms, 
restricted areas, etc. When an alarm is activated, the FEAC 
will generate audible and visual indicators locally within a 
building. In response to these indicators, a security guard 
who supervises the facility will take the appropriate action. 
20 If a facility or a building is not manned by a guard, the 
alarm signals will be transmitted automatically to a central 
PC. Alarm signals may also be transmitted a third party 
central alarm monitoring station, via an appropriate 
interface . 

25 With the conventional art, installing application 

programs on each and every central computer of multiple 
buildings which can be networked together to allow users to 
operate one or many functions through the networked central 
computers is very difficult. Frequently, central computers 

30 of different buildings will also have different and 
incompatible operating systems. In the situation where one 
or more buildings having a plurality of central computers are 
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networked together, any changes in the application programs 
or operating systems of each central computer would require 
changes to be made to each central computer individually so 
that the changes would be implemented to the entire network 
5 of central computers. Furthermore, the conventional art does 
not permit interaction between software of central computers 
which support different foreign languages due to different 
versions of operating systems on each central computer. 

Accordingly, a need in the art exists for a method and 
10 system for providing cross-platform remote control and 
monitoring of facility electronic access controllers that 
have different operating systems. A further need exists in 
the art for a method and system for providing cross-platform 
remote control and monitoring of facility electronic access 
15 controllers (FEACs) which allows a single change or multiple 
changes in at least one of entry codes to the facility and 
operating parameters to be implemented into individual 
operating systems of central computers of facility electronic 
access controllers simultaneously. 

20 Summary of the Invention 

Accordingly, it is a primary object of the present 
invention to provide a method and system for providing cross- 
platform remote control and monitoring of facility electronic 
access controllers. It is a further object of the present 
25 invention to provide a method and system for implementing 
changes with respect to facility access data and control for 
multiple central computers of facility electronic access 
controllers which may or may not have similar operating 
systems. 
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An additional object of the present invention is to 
provide a method and system for providing cross-platform 
remote control and monitoring of facility access controllers 
where the central computer of each facility electronic access 
5 controller includes a web server. 

Another object of the present invention is to provide a 
method and system for providing cross-platform remote control 
and monitoring of facility electronic access controllers 
where each central computer of a facility electronic access 
10 controller can communicate with clients via industrial 
protocol using transmission control protocol over internet 
protocol (TCP/IP) and hypertext transfer protocol (HTTP) . 

A further object of the present invention is to provide 
a method and system for providing cross-platform remote 
15 control and monitoring of facility electronic access 
controllers where clients of the facility electronic access 
controllers employ any type of web browser program to access 
the FEAC while remote computers or remote central computers 
of a FEAC are able to monitor transaction activities of a 
20 restricted area from and within the web server and/or the 
FEAC, A client as used herein is defined as a computer 
system or process that requests a service of another computer 
system or process such as a server. A server is a program 
which provides some service to other (client) programs. The 
25 connection between client and server is normally by means of 
message passing, often over a network, and uses some protocol 
to encode the client's requests and the server's responses. A 
server may run continuously (as a daemon) , waiting for 
requests to arrive or it may be invoked by some higher level 
30 daemon which controls a number of specific servers Pinet-ed" 
on Unix) . There are many servers associated with the 
Internet, such as those for Network File System, Network 
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30 



Information Service (NIS) , Domain Name System (DNS), FTP, 
news, finger, Network Time Protocol. 

An additional object of the present invention is to 
provide a method and system for providing cross-platform 
5 remote control and monitoring of facility access controllers 
where different central computers of FEACs running on 
different operating systems but which are connected in the 
same network (whether within a local area network or wide 
area network) to communicate with different central computers 
10 of FEAC. 

A further object of the present invention is provide a 
method and system for providing cross-platform remote control 
and monitoring of facility electronic access controllers 
where web servers of facility electronic access controllers 
15 are designed using hypertext markup language (HTML) standards 
that support different languages. 

Another object of the present invention is to provide a 
method and system for providing cross-platform remote control 
and monitoring of facility electronic access controllers 
where central computers of a FEAC act as simple mail transfer 
protocol (SMTP) clients, allowing the central computer of a 
FEAC to send data, log, normal activity transactions, or 
security breach data, etc., to a remote user via the internet 
E-mail protocol. With such a method and system, specific or 
25 selected information can be transmitted by a computer of a 
FEAC based on program control. Further, with such a method 
and system, specific or selected access information or data 
can be sent to multiple users at multiple locations via an 
internet E-mail system. 

It is a further object of the present invention to 
provide a method and system for providing cross-platform 
remote control and monitoring of facility access controllers 
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where central computers running on different operating 
systems of FEAC can retrieve/access information or data with 
standard E-mail software. 

A further object of the present invention is to provide 
5 a method and system for providing cross-platform remote 
control and monitoring of facility electronic access 
controllers where installation of identical software at each 
central computer of each FEAC is substantially eliminated. 
In other words, it is an object of the present invention to 
10 provide a method and system for providing cross-platform 
remote control and monitoring of facility electronic access 
controllers where the central computers of each FEAC may 
employ a different operating system with respect to a 
neighboring central computer of a neighboring FEAC and 
15 control can be achieved by a remote computer with a web 
browser program. 

An additional object of the present invention is to 
provide a method and system for providing cross-platform 
remote control and monitoring of facility intrusion alarm 
2 0 monitoring functions, whereby the same remote computer or 
computers acting as web clients can monitor alarms which 
detect facility or building penetration conditions via the 
internet . 

An additional object of the present invention is to 
2 5 provide a method and system for providing cross-platform 
remote control and monitoring of facility electronic access 
controllers where access data of the monitoring of restricted 
areas is provided to a remote computer or a central computer 
of a FEAC in real time. Such access data of restricted areas 
30 can include, but is not limited to, displaying cardholder 
identified codes, results of biometric scans, device names, 
location descriptions, and system database and FEAC in real 
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time. Other access data includes displaying graphical images 
and dynamic status information on web pages and retrieving 
such information with web browsers of a remote computer or a 
central computer of a FEAC. 
5 These and other objects of the present invention are 

fulfilled by providing a method for providing cross-platform 
remote control and monitoring of a facility electronic access 
controller, the method comprising the steps of: monitoring an 
input access control device with the facility electronic 
10 access controller; receiving first identification data with 
the facility electronic access controller from an input 
access control device; comparing second identification data 
stored in the facility input access controller with the first 
identification data; activating an output access control 
15 device of the facility electronic access controller if the 
first identification data matches the second identification 
data; generating at least one of time data and location data 
with the facility access controller in response to the first 
identification data; and transferring the first 
20 identification data and at least one of the time data and the 
location data with the facility electronic access controller 
over a cross-platform network to a remote computer. 

In addition, these and other objects of the present 
invention are also accomplished by a system for providing 
25 cross-platform remote control and monitoring of a facility 
electronic access controller, the system comprising: a 
facility electronic access controller including: a CPU; a 
non-volatile memory; at least one of a network port and a 
cross-platform port; an input/output interface; an input 
30 access control device operatively linked to the interface, 
the input access control device generating identification 
data of a user; an output access control device operatively 
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linked to the interface; a cross-platform network; and a 
remote computer operatively linked to the facility access 
controller by the cross-platform network, whereby the cross- 
platform network enables remote operation of the facility 
5 electronic access controller irrespective of compatibility 
between an operating system of the remote computer and an 
operating system of the facility access controller. 

Additionally, these and other objects of the present 
invention are also accomplished by A computer program product 
10 for providing cross-platform remote control and monitoring of 
a facility electronic access controller, the computer program 
product comprising: a computer useable medium having computer 
readable code embodied therein, the computer readable code 
including a controller operating system computer readable 
15 program code device, the controller operating system computer 
program code device further includes: an access control 
system computer readable program code module which monitors 
output and input access control data of a facility; a TCP/IP 
computer readable program code module; and at least one of an 
20 internet server computer readable program code module and a 
mail client computer readable program module, whereby the 
controller operating system computer readable program code 
device enables remote operation of the facility electronic 
access controller irrespective of compatibility between an 
25 operating system of a remote computer and the controller 
operating system computer readable code device of the 
facility access controller. 

Further scope of applicability of the present invention 
will become apparent from the detailed description given 
30 hereinafter. However, it should be understood that the 
detailed description and specific examples, while indicating 
preferred embodiments of the invention, are given by way of 
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illustration only, since various changes and modifications 

within the spirit and scope of the invention will become 

apparent to those skilled in the art from this detailed 
description . 

5 Brief Description of the Drawings 

The present invention will become more fully understood 
from the detailed description given hereinbelow and the 
accompanying drawings which are given by way of illustration 
only, and thus are not limitative of the present invention, 
10 and wherein: 

Figure 1 illustrates a block diagram of a system for 
providing cross-platform remote control and monitoring of a 
facility electronic access controller; 

Figure 2 illustrates a block diagram of the software 
15 modules which support a system for providing cross-platform 
remote control and monitoring of a facility electronic access 
controller; and 

Figure 3 illustrates a system of multiple facility 
electronic access controllers which are operatively linked 
20 with a cross-platform interface. 



Detailed Description of the Preferred Embodiments 

Referring in detail to the drawings and with particular 
reference to Figure 1, a system 10 for providing cross- 
platform remote control and monitoring of a facility 
electronic access controller 20 is shown. The facility 
electronic access controller (FEAC) preferably includes a 
central processing unit 22 which is operatively linked to a 
main non-volatile memory 24 and a secondary non-volatile 
memory 26. CPU 22 is further operatively linked to a 
volatile memory 28, network port 30, cross-platform port 32, 
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and input/output (I/O) interface 34. The CPU 22 is further 
operatively linked to a storage device 36. 

The main non-volatile memory 24 is preferably at least 
one of an erasable programmable read-only memory (EPROM) , an 
5 electrically erasable read-only memory (EEPRQM) , and a flash 
type memory. The main non-volatile memory is designed to 
store the operating system (OS) and application codes for the 
facility electronic access controller 20. 

The secondary non-volatile memory 26 is preferably at 

10 least one of an electrically erasable programmable read-only 
memory (EE PROM) and a flash type memory. The secondary non- 
volatile memory 26 is designed to store web pages. It is 
noted that the secondary non-volatile memory 26 and the main 
non-volatile memory 24 can be employed on the same memory 

15 chip as indicated by reference numeral 38 if an electrically 
erasable non-volatile memory is employed. The volatile 
memory 28 is preferably random access memory (RAM) . Volatile 
memory 28 is the memory that the CPU 22 uses for most of its 
operations which include tracking data from the I/O interface 

20 34 and providing the general system working area for the FEAC 
20. 

Network port 30 is preferably an Ethernet™ (standardized 
access method for local area network) network port which 
employs at least one of an unshielded twisted pair (UTP) or 

25 coaxial cable to connect to a local area network (LAN) 40. 
UTP typically includes wires which are used for . computer- to- 
computer communications such as for an Ethernet™ 
(standardized access method for local area network) that 
utilizes cable. Ethernet- is defined as a coaxial cable 

30 local area network where data is broken into packets which 
are using the carrier sense multiple access/collision direct 
(CSMA/CD) algorithm until the data packets arrive at the 
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destination without colliding with any other. Coaxial cable 
for local area networks is typically 50 ohm coaxial cable 
with multiple shielding. 

The cross-platform port 32 is preferably universal 
5 asynchronous receiver/ transmitter (UART) serial port. A UART 
is an integrated circuit used for serial communications, 
containing a transmitter (parallel-to-serial converter) and a 
receiver ( serial- to-parallel converter), where the 
transmitter and receiver are clocked separately. The cross- 
10 platform port 32 and network port 30 are not limited to 
Ethernet"* (standardized access method for local area network) 
network ports and UART serial ports. Other type of 
interfaces which can be supported include, but are not 
limited to, fiber optics, wireless LAN, parallel ports, ATM 
15 (asynchronous transfer mode which is a method for dynamic 
allocation of bandwidth using fix-size packets known as 
cells) . 

The network port 30 and cross-platform port are designed 
to support transmission control protocol over internet 

20 protocol (TCP/IP) . TCP and IP specify two protocols at 
specific layers, where TCP/IP is often used to refer to the 
entire ISO protocol suite based upon these protocols, 
including Telnet, FTP, UDP, RDP, HTTP, SMTP, and POP3. 

Specifically, the network port 30 and cross-platform 

25 port 32 are designed to be operatively linked to an on-line 
service (not shown) that permits access to the internet 
client-server distributed information retrieval system or 
worldwide web (WWW) 42. As illustrated in Figure 1, FEAC 20 
is operatively linked either via cross-platform port 32 - 

30 online service (server not shown) - internet client service 
system 42 or via network port 30 - LAN 40 - internet client 
server system 42. 
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Being operatively linked to the internet client server 
system 42, FEAC 20 can be remotely monitored and controlled 
by a remote control or terminal 44 which can be operatively 
linked to at least one of the LAN 40 or internet client 
5 server system 42 (via an online service or server not shown) . 
Remote computer 4 4 can monitor or control FEAC 20 from any 
geographical location as long as the remote computer 44 is 
operatively linked to the LAN 40 or internet client server 
system 42. The present invention is preferably designed 
10 where the remote computer 44 interacts with FEAC 20 by a web 
browser which employs both the JAVA" 1 * (object oriented 
programming language) and hypertext markup language (HTML) 
type languages. However, the present invention is not 
limited to these types of languages and can include other 
15 languages which permit cross-platform operation over the 
internet or worldwide web. Other languages include, but are 
not limited to, JAVA™ script, JAVA BEANS, extensible markup 
language (XML) , standardized generalized markup language 
(SGML) , HTML programs which include JAVA APPLETS, virtual 
20 reality modeling language (VRML), and other like object 
oriented programming languages. 

The present invention is designed for object-oriented 
languages that will permit remote control and monitoring of 
FEAC from any platform. An object-oriented language is 
25 defined as a method of software development that groups 
related functions and data into reusable chunks. When 
properly handled, object-oriented programming can reduce 
development time on new projects or changes within the 
programs that operate within FEAC 20. 
30 The input/out (I/O) interface is operatively linked to 

input access control devices 4 6 and output access control 
devices 48. The preferred input access control device is a 
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card key reader 50. The card key reader 50 can employ 
various hardware structures depending on the type of card key 
used with the FEAC 20. Types of card keys which permit 
access to facilities controlled by FEAC 20 include, but are 
5 not limited to, mag-stripe cards, bar-coded cards, 
integrated circuits (IC) circuit cards (smart cards), radio 
frequency (RF) cards, biometric cards, infrared type scanning 
cards, and other like data bearing records. The present 
invention is not limited to card keys which employ only one 
10 of the above-mentioned card types and therefore can include 
any combinations thereof. For example, card keys can employ 
mag-stripes as well as biometric identification indicators 
present on the card which are scanned by the card key reader 
50. 

15 Tn e present invention is not limited to card key type 

input access control devices 46. Other types of input access 
control devices 4 6 include, but are not limited to, biometric 
readers (such a retina-eye scans, skin prints, DNA scan, 
voice identification, weight, and combinations thereof etc.), 
20 key pad devices 54 (which include a key pad to enter a 
predetermined code set), and other like reading devices which 
require identification of a user before permitting access to 
a facility. The input access control devices can further 
include sensors 56 which detect the physical location of a 
25 user and/or the opening and closing of facility access doors. 
Typical sensors include, but are not limited to, infrared 
sensors and other heat sensors, weight sensors, magnetic read 
switches, video cameras (such as digital cameras which can be 
operatively linked to the internet client-server system 42); 
30 microphones, and other like sensing devices which detect the 
presence of living organisms. The input access control 
devices 4 6 may also include computers employed with digital 
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video cameras so that visual and audio recognition can be 
recognized by FEAC 20. 

The output access control devices preferably include, 
but are not limited to, audio output devices 58 and visual 
5 output devices 60. Preferred audio output devices 58 
include, but are not limited to, speakers, sirens, and other 
types of alarms which are audible to living organisms. 
Visual output devices 60 . include, but are not limited to, 
strobe lights, colored lights, video monitors, and other like 
10 video output devices which are perceptible by living 
organisms, such as humans. 

The output access control devices 48 preferably include 
lock actuators 62 which permit entry into a restricted area. 
Typical lock actuators include, but are not limited to, 
15 magnetic locks, electrically actuated deadbolts, hydraulic 
actuated locks, pneumatic actuated locks and other like lock 
actuators which permit opening of a door or opening of an 
aperture which leads to an enclosed space or restricted area. 
The input and output access control devices 4 6 and 48 
20 can employ single devices or units and do not have to include 
a plurality of devices. In other words, input access control 
devices 46 can be just a card key reader 50 without employing 
sensors 56. Further, output access control device 48 can 
include just one lock actuator without having audio output 
25 devices 58 or visual output devices 60. Input access control 
devices 4 6 and output access control devices 4 8 form a 
subsystem 64 of FEAC 20 which is operatively linked to I/O 
interface 34 of FEAC 20. The present invention is not 
limited to one FEAC subsystem 64 and can include multiple 
30 subsystems 64 which control access to various parts of 
restricted areas. Preferably, FEAC subsystem 64 will provide 
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access to various rooms within a building which is monitored 
by a single FEAC 20. 

Storage device 36 is preferably backup non-volatile 
memory for the main non-volatile memory 24 and secondary non- 
5 volatile memory 26 of FEAC 20. Storage device 36 is . 
preferably a tape or disk magnetic storage device which 
backups the data stored on the main non-volatile memory 24 
and secondary non-volatile memory 26. The storage device 36 
is designed to backup the transactional data generated by the 

10 input access control and output access control devices 4 6 and 
48. Specifically, storage device 36 is designed to be a 
secondary or backup memory device for storing hourly/daily 
alarm reports and/or hourly/daily transaction reports of 
organisms entering and exiting the facility controlled by 

15 FEAC 20. Storage device 36, are not limited to erasable 
programmable read only memory (EPROM) , EEPROMs, bubble 
memory, flash erasable programmable read only memory ( FEROM) 
and other ferroelectric technologies. Other types of storage 
devices include, but are not limited to CD ROM, tape and disk 

20 magnetic storage. 

Figure 2 illustrates the software structure 66 which is 
operable within the facility electronic access controller 20. 
The facility electronic access controller 20 preferably 
includes an operating system 68 which monitors several 

25 software modules which include an access control system 
module 70, a card key and system database module 72, common 
gateway interface (CGI) program modules 74, a web page 
database module 76, a web server module 78. a mail client 
module 80 and a module which employs transmission control 

30 protocol over internet protocol (TCP/IP) . The software 
structure 66 of FEAC 20 interacts and exchanges data with the 
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15 



input and output access control devices 4 6 and 48 via output 
access control data 84 and input access control data 86. The 
operating system 68 is designed to permit data exchange with 
a remote computer via network port 30 and/or a cross-platform 
port 32. 

The operating system for the facility electronic access 
controller 20 monitors all of the modules to ensure that they 
are running concurrently. When a remote computer 44 or LAN 
40 requests information through the web server 78 or E-mail 
client 80, the operating system does not stop the access 
control system module 70 from monitoring and processing 
output access control data 84 and input access control 86 
from input access control and output access control devices 
46 and 48. The operating system 68 manages all of the memory 
needs of the program modules in addition to all of the 
input/output {I/O) access control devices 46 and 48. The 
operating system 68 manages all of the output access control 
data 84 and input access control data 86 in addition to 
managing all of the micro processor processing time slots. 

Microprocessor time slot is defined as a fix time period 
(normally sub-seconds) to allow a program to execute. When 
more than one program is executed, the operating system will 
break a second time period into multiple time slots and 
allocate each program to a specific time slot. This process 
25 is typically repeated for every clocked second. This allows 
the operating system to execute multiple programs at the same 
time. 

The control or operating system 68 is preferably 
programmed in C language. However, other programming 

languages are not beyond the scope of the present invention. 
Other programming languages include, but are not limited to, 



20 
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C++, Delphi, JAVA™, and JavaScript*, Pascal, Perl, visual 
basic, Ada, and Eiffel. 

The access control system module 70 monitors the status 
of any sensors 56 in real time. Basically, the access 
5 control system module 70 manages and controls all I/O 
functions and output access control data 84 and input access 
control data 86 in real time. The access control system 
module 70 permits access within restricted areas based on the 
operational parameters of at least one of the card key reader 
10 50, biometrics reader 52, and key pad device 54. 
Identification information for users of the FEAC 20 are 
stored in digital form in the card key and system database 
72. The access control system 70 logs all transactions and 
events of the FEAC subsystem 64 with date and time stamps. 
15 The access control system 70 is able to change alarm 
monitoring and access control behaviors depending upon time 
based events if desired. The access control system 70 
permits CGI programs of CGI programs module 74 to change the 
access control program parameters through the card key and 
20 system database 72. 

The common gateway interface (CGI) module 74 provides a 
standard interface for data flow between the web server 
program module 78 and the card key and system database 
program module 72. The CGI program module 74 specifies how 
25 to pass arguments to the executing program as part of HTTP 
request. Typically the CGI program module 74 will generate 
some HTML which will be passed back to a browser of a remote 
computer 44 but it can also request uniform resource locator 
(URL) redirection. The CGI program module 74 allows returned 
30 HTML (or other document types) to depend on any arbitrary way 
on a request. The CGI program module 74 of the present 
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invention can be any program which can accept command line 
arguments . 

In the preferred embodiment, the CGI program module 74 
includes a set of programs that will be executed depending on 
5 the web server request from a remote computer 44. The CGI 
programs and the CGI program module 74 of the present 
invention are typically employed to obtain data from a web 
page and stored into the card key and system database program 
module 72. Typically such a data transaction includes adding 
10 a new user's card information, deleting identification codes 
from the database, etc., etc. 

The CGI program module 7 4 creates web pages dynamically 
upon changes in operational behavior of the controller, or 
upon receipt of a user's request from a remote computer 44. 
15 Such web pages can display transaction activities or status 
of the input and output access control devices 46 and 48. 
Specifically, the web page is created by the CGI program 
interface and can display alarm occurrences along with 
time/date stamps. 

20 Since the access control system module 70 runs in real 

time, the CGI program module 74 can generate web pages which 
have dynamic updates of graphical images which show the 
locations of users that are within a facility controlled by 
FEAC 20. The web page generated by CGI program module 74 can 

25 include icons and status information as to the relative 
location, dates and times of entry of users within the 
facility managed by the FEAC 20. The CGI program module 74 
further verifies and checks web logon and access rights to 
FEAC 20. 

30 The car d key and system database module 72 includes a 

user's identification as well as a user's access history. 
The card key and system database module 72 is a set of 
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database files that contain ail of the information needed by 
the access control and alarm monitoring program 70 to 
operate. The card key and system database module 72 may 
include, but is not limited to, user and card key 
5 information, access rights, access time zones, transaction 
records, holiday dates, and other operating system 
parameters . 

The web server program module 79 : S designed to generate 
and serve web pages that include information which is stored 

10 in the card key and system database module 72. The web 
server program module 78 employs hypertext transfer protocol 
(HTTP) which is the client-server TCP/IP protocol used on the 
world wide web (WWW) for the exchange of HTML documents. The 
web server program module 78 is preferably based on the 

15 Internet standard RFC 1945 - Hypertext Transfer Protocol - 
HTTP/1.0 and RFC 2068 - Hypertext Transfer Protocol - 
HTTP/1.1. The web server program module 78 will typically 
perform at least one of the following functions in response 
to URL information: retrieve a web page; execute a CGI 

20 program; or retrieve data from the client PC. The web server 
program module 78 is not limited to these functions and can 
perform any necessary "server" type functions which improve 
FEAC performance. A CGI program that is executed with web 
server program module 78 will pass a result through the web 

25 server program module 78 to reach a client PC or remote 
computer 44 . 

The web page database program module 7 6 provides 
services and functions such as permitting logging into the 
access control system program module 70 and displaying past 
30 transactions and current transactions present in the card key 
and system database module 72. The web page database module 
76 permits appending, updating, and deleting cardholder 
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identification codes, device names, and location descriptions 
within the card key and system database 72 in real time. The 
web page database program module 76 retrieves transactions 
and database information from the card key and system 
5 database program module 72 and permits transfer of data to 
remote computers in real time. The web page database program 
module 76 permits remote computers 44 to send updated 
database information within zhe card key and system database 
program modules 72. 
10 The web page database program module 7 6 can display 

system status of both the input and output access control 
devices 4 6 and 48 in real time. Such display of system 
status can take the form of graphical images with dynamic 
status information on a video device of the remote computer 
15 44. The web page database program module 76 supports JAVA 
APPLETS, JAVA Script and/or virtual basic VB Script to 
provide enhanced user interface from remote computers 44. 

The mail client program module 80 generates E-mail to a 
user's or administrator's E-mail account. The term "client" 
2 0 is defined as a computer system or process that requests a 
service of another computer system or process {a "server"). 
The mail client program module typically employs simple mail 
transfer protocol (SMTP) which is used to transfer electronic 
mail between computers, usually over an Ethernet 1 *. SMTP is a 
25 server-to-server protocol so other protocols are used to 
access the messages. SMTP dialog usually happens in the 
background under the control of a message transport system, 
e.g., send mail but it is possible to interact with a SMTP 
server using Telnet to connect to a normal SMTP port. The 
30 mail client program module 80 provides E-mails that include, 
but are not limited to, information which indicates system 
status, hourly/daily alarm reports, hourly/daily transaction 
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reports, and daily, time clocking transactions. The 
information generated by the mail client program module 80 
can be programmed to be formatted as standard text E-mail or 
as a text file attachment in the E-mail. 
5 The TCP/IP program module 82 , is preferably TCP/IP stack. 

The TCP/IP program stack is a data structure for storing 
items which are to be accessed in last-in first-out order. 
The operations on a stack are to create a new stack, to 
"push" a new item on to the top of stack and to "pop" the top 
10 item off. By using TCP/IP communication protocol within the 
TCP/IP program module, different types of communication 
interfaces are available to connect the FEAC 20 to a remote 
computer 44. The TCP/IP program module 82 having a TCP/IP 
stack permits standard LAN connection for intranet accesses; 
15 standard LAN connection for internet accesses; and standard 
data transfer via modem with a serial RS-232 port with point- 
to-point protocol (PPP) for dial-in and-or dial-out internet 
accesses. 

Figure 3 shows a block diagram of a preferred embodiment 
20 of the present invention. In Figure 3, multiple facility 
electronic access controllers (FEACs) 20 are shown to be 
operatively linked to an internet client service system 42. 
Preferably the internet client-server system is the world 
wide web or Internet. With the system of the present 
25 invention, a single remote computer can access multiple FEACs 
20' and 20'' from a single remote geographical location with 
a remote computer 44. The FEACs 20 1 and 20' ' may have 
operating systems which are compatible with each other. Such 
is the case with facilities or buildings which are spaced 
30 very close to each other in a geographical manner. 

FEACs 20* form a subsystem 88 having a first type of 
operating system. FEACs 20' ' may also have similar operating 
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systems relative to each other but which are different with 
respect to the operating systems of FEACs 20' . Therefore, 
the operating systems of FEACs 20* and 20' • may not be 
compatible with each other and therefore conventional 
5 operative links would not be possible. 

With the present invention, when each of the FEACs 20' 
and 20' ' of the present invention include the system hardware 
10 and software 66, cross-plat forrr, operation between the 
relatively different operating systems of FEACs 20' of 
10 subsystem 88 and operating systems of FEACs 20' 1 of subsystem 
90 is possible. This cross-platform remote control and 
monitoring can be performed by using a remote computer 44 
operatively linked to the internet client-server system 42. 
In the alternative, it is possible to control and monitor the 
15 FEAC 20* 1 of subsystem 90 from a FEAC 20' in subsystem 88 due 
to the cross-platform nature of the present invention which 
employs the internet client-server system 42. 

In other words, any FEAC system can be controlled 
internally within a respective FEAC 20' or 20' 1 itself or 
20 within another FEAC system 20' or 20' • which is 
geographically outside of the FEAC 20' or 20' 1 being 
monitored or controlled. Subsystem 88 of FEACs 20 1 and 
subsystem 90 of FEACs 20' ' would closely parallel two sets of 
buildings or facilities which are displaced significantly far 
25 away from each other and which may have not been equipped 
with the same operating systems. For example, subsystem 88 
with FEACs 20' could be a university in one geographical 
location such as a country and subsystem 90 of FEACs 20' ' 
could be a university having buildings with FEACs 20* ' that 
30 are in a second country on an opposite side of the globe. 

The applications of this invention are not limited to 
these examples and can include any other applications where 
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cross-platform operation of different FEACs 20' or 20' ' are 
desired. It is further noted that it is also possible to 
simply have FEACs 20' and 20" with compatible operating 
systems which can use the internet client server system 42 in 
5 order to eliminate the need for providing separate cabling 
between subsystems 88 and subsystem 90 and the respective 
FEACs 20 or 20 1 within a respective subsystem. 

Exemplary System Capabilities: 

The remote computer 4 4 via a web browser operates and 

10 monitors alarm monitoring conditions, alarm sensor status, 
operating parameters, and system database and transactions 
files. The remote computer 44 is able to monitor 

transactions or send remote commands or download parameter 
changes to selected FEACs. 

15 Graphical maps showing the floor plans of a building or 

building grounds/compounds can show the location of alarm 
sensors on the computer screen of the remote computer 44. 
Each alarm sensor shall be tagged with an icon and 
description text. 

20 For alarm monitoring, the operator at each remote 

computer 44 is able to view the status of alarm sensors, 
whether it is in normal or alarm state or even a line fault. 
The location of each sensor shall be represented with icon in 
the same graphical map. Each intrusion alarm shall be 

25 represented by a flashing icon and a beeping alarm tone. 

Multiple web pages produced by the operating system 68 
shall show current and historical data for different 
transaction activities in addition to graphical maps showing 
the location of an alarm sensor. It shall be possible to 

30 configure specific types of web pages for users with a 
predefined security clearance. 
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A specific type of web page having more or less data can 
be based on security password (s) and other types of log-in 
control. For example, certain remote computers 44 will have 
access to all FEAC functions, to allow transaction 
5 monitoring, database entry/edi ting/detection and software 
remote control functions. While, on the other hand, certain 
remote computers 44 with a lower security clearance may have 
access to only transaction and alarm monitoring functions, 
such as those type of functions typically utilized by guards. 
10 All alarm monitored points shall be armed or disarmed 

locally by local arming/ disarming input devices, or by 
automatic time zone controls or manually by the operator at 
the remote computer 44. The remote computer 44 shall, upon 
receipt of an alarm signal from an alarm controller, perform 
15 at least one of the following: display the full alarm 
description text on an alarm transaction view window, showing 
the exact location, time and date of occurrence of an 
incoming alarm point plus the map's name/location where the 
alarm point can be viewed; when the corresponding map is 
20 being activated, the corresponding symbol representing the 
particular sensing detector shall be shown with a flashing 
icon and an alarm tone; and a system alarm counter shall 
indicate the number of alarms in the queue if there are more 
than one alarm occurring at the same time; the system will 
25 sound a beeping audible tone within a remote computer's 44 
SMCCS (PC speaker); log the alarm text description, the date 
and time of its occurrence; and generate a hard-copy printout 
of the alarm message on the printer of the remote computer 
44. 

30 The operator of a remote computer 4 4 can handle the 

alarm conditions in the following manner: . as described 
earlier, upon occurrence of an alarm, the remote computer 44 
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shall display an icon on the map associated with the alarm; 
once the operator has been notified of this alarm, he/she 
will use the mouse to turn off the alarm by simply pointing 
and clicking at an icon on the remote computer 44 to first 
5 sound off the alarm; next, the operator simply points the 
mouse against the flashing alarm icon to bring up the 
instructions associated with this specific alarm in a dialog 
box; if the operator wishes to acknowledge that alarm, he/she 
shall click at the <Acknowledge> icon to confirm the 
10 acknowledgement; the remote computer 44 shall then log the 
operator's name, time and date of the acknowledgement in 
reference to that specific alarm point; and the remote 
computer 44 shall be capable of displaying multiple graphic 
maps web pages on the same computer screen in order to assist 
15 operators in locating alarm sensors locations visually and 
quickly. 

The present invention provides a method and system that 
enables cross-platform remote control and monitoring of 
facility electronic access controllers. The invention also 

20 provides a method and system for implementing changes with 
respect to facility access data and control for multiple 
central computers of facility electronic access controllers 
which may or may not have similar operating systems. 

The present invention provides a method and system for 

25 providing cross-platform remote control and monitoring of 
facility access controllers where the central computer of 
each facility electronic access controller includes a web 
server . 

The method and system for providing cross-platform 
30 remote control and monitoring of facility electronic access 
controllers permit each central computer of a facility 
electronic access controller to communicate with clients via 
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industrial protocol using transmission control protocol over 
internet protocol (TCP/IP) and hypertext transfer protocol 
(HTTP) . 

The method and system for providing cross-platform 
5 remote control and monitoring of facility electronic access 
controllers permit clients of the facility electronic access 
controller:; to employ any web browser program to access the 
FEAC wich remote computers or remote central computers of a 
FEAC. The system permits monitoring of 

10 transactions/activities of a restricted area from and within 
the web server and/or the FEAC. With the present invention, 
control can be achieved by a remote computer with a web 
browser program. 

The present invention provides a method and system for 
15 providing cross-platform remote control and monitoring of 
facility intrusion alarm monitoring functions, whereby the 
same remote computer or computers acting as web clients can 
monitor alarms which detect facility or building penetration 
conditions via the internet. 
20 The present invention provides a method and system for 

providing cross-platform remote control and monitoring of 
facility access controllers where different central computers 
of FEACs running on different operating systems but which are 
connected in the same network (whether within a local area 
25 network or wide area network) to communicate with different 
central computers of FEAC. 

The invention also provides a method and system for 
providing cross-platform remote control and monitoring of 
facility electronic access controllers where web servers of 
30 facility electronic access controllers are designed using 
hypertext markup language (HTML) standards that support 
different languages. 
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The method and system provides cross-platform remote 
control and monitoring of facility electronic access 
controllers where central computers of a FEAC act as simple 
mail transfer protocol (SMTP) clients, allowing the central 
5 computer of a FEAC to send data, log, normal activity 
transactions, or security breach data, etc., to a remote user 
via the internet E-mail protocol. With such a method and 
system, specific or selected information can be transmitted 
by a computer of a FEAC based on program control. Further, 
10 with such a method and system, specific or selected access 
information or data can be sent to multiple users at multiple 
locations via an internet E-mail system. 

The present invention provides a method and system for 
providing cross-platform remote control and monitoring of 
15 facility access controllers where central computers running 
on different operating systems of FEAC can retrieve/access 
information or data with standard E-mail software. 

The invention also provides a method and system for 
providing cross-platform remote control and monitoring of 
20 facility electronic access controllers where installation of 
identical software at each central computer of each FEAC is 
substantially eliminated. 

The present invention employs a method and system for 
providing cross-platform remote control and monitoring of 
25 facility electronic access controllers where access data of 
the monitoring of restricted areas is provided to a remote 
computer or a central computer of a FEAC in real time . Such 
access data of restricted areas includes, but is not limited 
to, displaying cardholder identified codes, results of 
30 biometric scans, device names, location descriptions, and 
system database and FEAC in real time. Other access data 
includes, but is not limited to, displaying graphical images 
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and dynamic status information on web pages and retrieving 
such information with web browsers of a remote computer or a 
central computer of a FEAC. 

The invention being thus described, it will be obvious 
that the same may be varied in many ways. Such variations 
are not to be regarded as a departure from the spirit and 
scope of the invention, and all such modifications as would 
be obvious to one skilled in the art are intended to be 
included within the scope of the following claims. 
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What is claimed is: 

1 1. A system for providing cross-platform remote control and 

2 monitoring of a facility electronic access controller, the 

3 system comprising: 

4 a facility electronic access controller including: 

5 a CPU; 

6 a non- volatile memory; 

7 at least one of a network port and a cross-platform 

8 port; 

9 an input/output interface; 

10 an input access control device operatively linked 

11 to the interface, the input access control device generating 

12 identification data of a user; 

13 an output access control device operatively linked 

14 to said interface; 

15 a cross-platform network; and 

16 a remote computer operatively linked to said facility 

17 access controller by said cross-platform network, whereby 

18 said cross-platform network enables remote operation of said 

19 facility electronic access controller irrespective of 

20 compatibility between an operating system of said remote 

21 computer and an operating system of said facility access 

22 controller. 

1 2. The system of claim 1, wherein said cross-platform 

2 network includes an internet client-server system. 

1 3. The system of claim 1, wherein said cross-platform 

2 network includes a local area network. 
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1 4. The system of claim 1, wherein said CPU generates page 

2 data of information available on an internet client-server 

3 system identified by a uniform resource locator. 

1 5. The system of claim 1, wherein said CPU formats at least 

2 one of said identification data, time data, and location data 

3 into an electronic mail message using simple mail transfer 

4 protocol. 



1 6. The system of claim 1, wherein said CPU runs a first 

2 operating system software and said remote computer runs a 

3 second operating system software, said first operating system 

4 software is different than said second operating system 

5 software. 



1 7. The system of claim 1, wherein said CPU runs a controller 

2 operating system software, said controller operating system 

3 software includes an access control system program module, a 

4 TCP/IP program module and an internet server program module. 

1 8. The system of claim 1, wherein said CPU runs a controller 

2 operating system software, said controller operating system 

3 software includes an access controller system program module^ 

4 a TCP/IP program module, and a mail client program module. 

1 9. The system of claim 1, wherein said input access control 

2 device includes at least one of a card key reader, a 

3 biometrics reader, and a keypad device. 

1 10. The system of claim 1, wherein said input access control 

2 device includes a sensor. 
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7 



1 11. The system of claim l, wherein said output access 

2 control device includes at least one of an audio output 

3 device, a visual output device, and an actuator of a lock. 

1 12. A method for providing cross-platform remote control and 

2 monitoring of a facility electronic access controller, the 

3 method comprisinq the steps of: 

4 monitoring an input access com rol device with the 

5 facility electronic access controller; 
receiving first identification data with the facility 

electronic access controller from an input access control 

8 device; 

9 comparing second identification data stored in the 

10 facility input access controller with said first 

11 identification data; 

12 activating an output access control device of the 

13 facility electronic access controller if said first 

14 identification data matches said second identification data; 

15 generating at least one of time data and location data 

16 with the facility access controller in response to said first 

17 identification data; and 

18 transferring said first identification data and at least 

19 one of said time data and said location data with the 

20 facility electronic access controller over a cross-platfonn 

21 network to a remote computer. 

1 13. The method of claim 12, further comprising the step of 

2 storing said first identification data and at least one of 

3 said time data and said location data in a non-volatile 

4 memory of the facility electronic access controller. 
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1 14. The method of claim 12, further comprising the steps of: 

2 accessing at least one of said first identification 

3 data, said second identification data, said time data, and 
said location data from the facility electronic access 

5 controller with a remote computer operatively linked to the 

6 controller via a cross-platform network; and 
changing at least one of said first identification data, 

said second identification data, said time data, said 
location data, and operating parameters of the facility 
electronic access controller with the remote computer. 



4 



7 
8 
9 
10 



1 



15. The method of claim 14, wherein the steps of accessing 

2 and changing data of the facility electronic access 

3 controller includes operatively linking a remote computer to 
an internet client-server system. 



4 



16. The method of claim 12, further comprising the steps of: 
displaying at least one of graphical data and text data 

corresponding to at least one of said first identification 
data, said second identification data, said time data, said 

5 location data, and operating parameters of the facility 

6 electronic access controller on a video device of a remote 

7 computer operatively -linked to the controller via a cross- 

8 platform network; and 

9 changing at least one of said first identification data, 
10 said second identification data, said time data, said 

location data, and operating parameters of the facility 
electronic access controller with the remote computer. 

17. The method of claim 12, further comprising the step of: 
formatting at least one of said first identification 

data, said second identification data, said time data, and 



11 

12 
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4 said location data into an electronic mail message using 

5 simple mail transfer protocol. 

1 18. The method of claim 12, further comprising the step of: 

2 generating a page of information available on an 

3 internet client-server system identified by a uniform 

4 resource locator. 

1 19. The method of claim 12, further comprising the steps of: 

2 operating the facility electronic access controller with 

3 a first operating system; and 

4 operating the remote computer with a second operating 

5 system, said second operating system being different than 

6 said first operating system. 

1 20. The method of claim 12, wherein the step of receiving 

2 said first identification data further includes the step of 

3 reading a card key which is placed adjacent to a reader. 

1 21. The method of claim 12, wherein the step of activating 

2 an output control device includes the step of activating an 

3 actuator of a lock, and unlocking said lock to permit entry 

4 into a restricted area. 

1 22. A computer program product for providing cross-platform 

2 remote control and monitoring of a facility electronic access 

3 controller, the computer program product comprising: 

4 a computer useable medium having computer readable code 

5 embodied therein, said computer readable code including a 

6 controller operating system computer readable program code 
1 device, said controller operating system computer program 
8 code device further includes: 
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9 an access control system computer readable program code 

10 module which monitors output and input access control data of 

11 a facility; 

12 a TCP/IP computer readable program code module; and 

13 at least one of an internet server computer readable 

14 program code module and a mail client computer readable 

15 program module, whereby said controller operating system 

16 computer readable program code device enables remote 

17 operation of the facility electronic access controller 

18 irrespective of compatibility between an operating system of 

19 a remote computer and said controller operating system 

20 computer readable code device of the facility access 

21 controller. 



23. The computer program product of claim 22, wherein said 
controller operating system computer readable program code 
device includes a database program module operatively linked 
to said internet server computer readable program code. 



24. 



The computer program product of claim 22, wherein said 

2 controller operating system computer readable program code 

3 device includes a card key database program module 

4 operatively linked to said access control system computer 

5 readable program code module. 

1 25. The computer program product of claim 22, wherein said 

2 controller operating system computer readable program code 

3 device includes CGI computer readable program code modules. 

1 26. The computer program product of claim 22, wherein said 

2 access control system computer readable program code module 

3 includes a plurality of submodules, said submodules control 
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4 at least one of input access control device and an output 

5 access control device. 
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